论文信息 - Intrusion Detection in Software Defined Networks with Self-organized Maps

Intrusion Detection in Software Defined Networks with Self-organized Maps

The Software Defined Network (SDN) architecture provides new opportunities to implement security mechanisms in terms of unauthorized activities detection. At the same time, there are certain risks associated with this technology. The presented approach covers a conception of the measurement method, virtual testbed and classification mechanism for SDNs. The paper presents a measurement method which allows collecting network traffic flow parameters, generated by a virtual SDN environment. The collected dataset can be used in machine learning methods to detect unauthorized activities. Keywords—IDS dataset, machine learning, metasploit, network security, network simulation, open flow, virtualization.

Marek Amanowicz | Damian Jankowski | M. Amanowicz | Damian Jankowski

[1] Rodrigo Braga,et al. Lightweight DDoS flooding attack detection using NOX/OpenFlow , 2010, IEEE Local Computer Network Conference.

[2] Jim Esch,et al. Software-Defined Networking: A Comprehensive Survey , 2015, Proc. IEEE.

[3] Fernando M. V. Ramos,et al. Towards secure and dependable software-defined networks , 2013, HotSDN '13.

[4] Andrei Vladyko,et al. A fuzzy logic-based information security management for software-defined networks , 2014, 16th International Conference on Advanced Communication Technology.

[5] Syed Ali Khayam,et al. Revisiting Traffic Anomaly Detection Using Software Defined Networking , 2011, RAID.

[6] Vishal Patel,et al. A Survey on Vulnerabilities of Openflow network and its impact on SDN/Openflow controller , 2014 .

[7] Basil S. Maglaris,et al. Combining OpenFlow and sFlow for an effective and scalable anomaly detection and mitigation mechanism on SDN environments , 2014, Comput. Networks.

[8] Martin Chovanec,et al. INTRUSION DETECTION SYSTEM USING SELF ORGANIZING MAP , 2006 .

[9] P. Anitha,et al. Efficient classification mechanism for network intrusion detection system based on data mining techniques: A survey , 2014, 2014 IEEE 8th International Conference on Intelligent Systems and Control (ISCO).

[10] Guofei Gu,et al. Attacking software-defined networks: a first feasibility study , 2013, HotSDN '13.